Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6833/F3D480EC83B311E69DD86730C4F9AE02/3758252683B411E694DF9530C4F9AE02.roa
File: 3758252683B411E694DF9530C4F9AE02.roa (raw, json)
Hash identifier: 51dqorlzrNCIMf1SSpH947ZCjrBbt/FxuC9AOb3ezZg=
Subject key identifier: 29:E3:E9:5F:CA:52:03:B4:03:77:C3:47:F3:60:64:98:F2:F7:5D:97
Certificate issuer: /CN=A91C6833/serialNumber=45C808A8ACDE24AC9613E01A49596100ED5E8CF1
Certificate serial: 1C23
Authority key identifier: 45:C8:08:A8:AC:DE:24:AC:96:13:E0:1A:49:59:61:00:ED:5E:8C:F1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RcgIqKzeJKyWE-AaSVlhAO1ejPE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6833/F3D480EC83B311E69DD86730C4F9AE02/3758252683B411E694DF9530C4F9AE02.roa
Signing time: Mon 12 Sep 2022 04:55:14 +0000
ROA not before: Mon 12 Sep 2022 04:55:14 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 58893
IP address blocks: 43.242.176.0/22 maxlen: 22
43.242.178.0/24 maxlen: 24
43.242.179.0/24 maxlen: 24
103.11.220.0/24 maxlen: 24
103.12.58.0/24 maxlen: 24
103.18.243.0/24 maxlen: 24
103.29.163.0/24 maxlen: 24
103.75.244.0/22 maxlen: 22
103.75.244.0/24 maxlen: 24
103.75.245.0/24 maxlen: 24
103.75.246.0/24 maxlen: 24
103.75.247.0/24 maxlen: 24
103.93.95.0/24 maxlen: 24
103.97.154.0/24 maxlen: 24
116.206.64.0/22 maxlen: 22
116.206.64.0/24 maxlen: 24
116.206.65.0/24 maxlen: 24
116.206.66.0/24 maxlen: 24
116.206.67.0/24 maxlen: 24
203.80.128.0/24 maxlen: 24
203.80.130.0/24 maxlen: 24
2407:5b80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7203 (0x1c23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6833/serialNumber=45C808A8ACDE24AC9613E01A49596100ED5E8CF1
Validity
Not Before: Sep 12 04:55:14 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=631ebbb1-62b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2c:7a:a0:8d:1e:48:4c:3c:9e:c4:68:cd:60:
25:04:9c:6d:76:54:14:0c:f0:11:f1:c1:53:df:30:
6d:3b:c6:18:eb:7e:4b:da:13:aa:26:98:2d:aa:98:
33:a3:96:32:50:3e:b6:4a:36:d6:66:4e:32:13:c5:
64:e9:c2:34:98:3c:01:de:6b:71:fb:44:14:af:38:
86:62:3e:f3:29:ec:fd:93:43:21:58:25:7d:9d:6c:
2c:5c:61:d6:0a:5f:ea:00:62:0d:f6:0c:2d:63:9a:
70:01:63:2b:17:94:ff:bd:0d:2f:c2:d0:d5:76:26:
89:d4:3c:4a:b8:39:de:3a:0a:b2:09:8d:9b:4b:f6:
5d:a6:67:8d:1d:49:49:cf:3b:2b:7a:30:6f:66:7a:
4d:d2:58:0a:c0:59:25:33:69:a7:ba:72:08:55:63:
a5:43:aa:b7:36:a7:ef:fd:5a:f5:76:d9:cd:bc:76:
ee:f0:59:8c:78:35:9c:29:48:3b:99:ad:62:79:58:
71:21:85:11:ec:cc:3c:20:dd:35:54:b2:07:c8:2b:
53:44:ab:2f:96:ff:36:4e:ae:7e:d7:31:a1:7c:c4:
bd:f2:23:db:40:b4:5e:d0:dd:65:c8:ec:10:35:98:
ed:e0:a0:53:0b:29:77:f9:68:52:95:3f:7c:24:84:
6a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E3:E9:5F:CA:52:03:B4:03:77:C3:47:F3:60:64:98:F2:F7:5D:97
X509v3 Authority Key Identifier:
keyid:45:C8:08:A8:AC:DE:24:AC:96:13:E0:1A:49:59:61:00:ED:5E:8C:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6833/F3D480EC83B311E69DD86730C4F9AE02/RcgIqKzeJKyWE-AaSVlhAO1ejPE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RcgIqKzeJKyWE-AaSVlhAO1ejPE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6833/F3D480EC83B311E69DD86730C4F9AE02/3758252683B411E694DF9530C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.242.176.0/22
103.11.220.0/24
103.12.58.0/24
103.18.243.0/24
103.29.163.0/24
103.75.244.0/22
103.93.95.0/24
103.97.154.0/24
116.206.64.0/22
203.80.128.0/24
203.80.130.0/24
IPv6:
2407:5b80::/32
Signature Algorithm: sha256WithRSAEncryption
4d:04:e9:af:f4:c3:29:18:55:5d:5d:6f:bd:19:a3:05:6a:4f:
0a:06:70:68:d7:fb:ec:49:cb:22:ad:71:00:15:2a:0c:a6:87:
18:a1:37:9d:fe:27:70:12:46:2e:5c:9a:cd:01:c8:ac:8a:a5:
b9:8d:20:71:8d:dc:bf:c6:46:10:47:0d:a2:1e:35:9d:1c:c4:
5b:6f:58:80:77:cf:5f:20:2e:22:60:1b:44:df:2e:1a:3d:e6:
79:5f:7b:8b:db:2c:bc:e7:78:8c:34:2e:8b:6c:d6:1a:88:fd:
3c:0e:c4:7d:aa:89:27:3e:d8:38:ce:6c:0d:08:8a:78:54:bb:
8e:97:ed:db:e2:ae:a8:4f:b1:d9:7c:a6:c6:32:d5:6f:3f:41:
ff:2d:a2:48:1c:e1:ea:45:25:59:f6:c0:5e:4f:aa:88:7d:0d:
07:cd:c5:96:00:1b:7b:d4:6a:ba:9a:a6:4e:9a:70:cf:ee:d3:
71:7e:57:57:4b:0c:df:93:da:5b:18:de:77:4d:6b:17:7b:08:
de:96:5d:12:4f:46:a2:b6:ee:b1:aa:9c:3f:1f:57:c9:cc:da:
a4:b9:11:33:50:6a:96:cc:9d:34:6d:d1:30:bc:bb:ce:b5:44:
79:8e:ff:21:b2:88:35:a6:e4:4d:88:4e:74:7b:32:e3:d0:33:
93:cd:88:bc
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgICHCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzY4MzMxMTAvBgNVBAUTKDQ1QzgwOEE4QUNERTI0QUM5NjEzRTAxQTQ5NTk2MTAw
RUQ1RThDRjEwHhcNMjIwOTEyMDQ1NTE0WhcNMjMxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzFlYmJiMS02MmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnCx6oI0eSEw8nsRozWAlBJxtdlQUDPAR8cFT3zBtO8YY635L2hOqJpgtqpgz
o5YyUD62SjbWZk4yE8Vk6cI0mDwB3mtx+0QUrziGYj7zKez9k0MhWCV9nWwsXGHW
Cl/qAGIN9gwtY5pwAWMrF5T/vQ0vwtDVdiaJ1DxKuDneOgqyCY2bS/ZdpmeNHUlJ
zzsrejBvZnpN0lgKwFklM2mnunIIVWOlQ6q3Nqfv/Vr1dtnNvHbu8FmMeDWcKUg7
ma1ieVhxIYUR7Mw8IN01VLIHyCtTRKsvlv82Tq5+1zGhfMS98iPbQLRe0N1lyOwQ
NZjt4KBTCyl3+WhSlT98JIRqqwIDAQABo4IC4DCCAtwwHQYDVR0OBBYEFCnj6V/K
UgO0A3fDR/NgZJjy912XMB8GA1UdIwQYMBaAFEXICKis3iSslhPgGklZYQDtXozx
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjgzMy9GM0Q0ODBFQzgz
QjMxMUU2OUREODY3MzBDNEY5QUUwMi9SY2dJcUt6ZUpLeVdFLUFhU1ZsaEFPMWVq
UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1JjZ0lxS3plSkt5V0UtQWFTVmxoQU8xZWpQRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QzY4MzMvRjNENDgwRUM4M0IzMTFFNjlERDg2NzMwQzRGOUFFMDIvMzc1ODI1MjY4
M0I0MTFFNjk0REY5NTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwagYIKwYBBQUHAQcBAf8E
WzBZMEgEAgABMEIDBAIr8rADBABnC9wDBABnDDoDBABnEvMDBABnHaMDBAJnS/QD
BABnXV8DBABnYZoDBAJ0zkADBADLUIADBADLUIIwDQQCAAIwBwMFACQHW4AwDQYJ
KoZIhvcNAQELBQADggEBAE0E6a/0wykYVV1db70ZowVqTwoGcGjX++xJyyKtcQAV
KgymhxihN53+J3ASRi5cms0ByKyKpbmNIHGN3L/GRhBHDaIeNZ0cxFtvWIB3z18g
LiJgG0TfLho95nlfe4vbLLzneIw0Lots1hqI/TwOxH2qiSc+2DjObA0IinhUu46X
7dvirqhPsdl8psYy1W8/Qf8tokgc4epFJVn2wF5Pqoh9DQfNxZYAG3vUarqapk6a
cM/u03F+V1dLDN+T2lsY3ndNaxd7CN6WXRJPRqK27rGqnD8fV8nM2qS5ETNQapbM
nTRt0TC8u861RHmO/yGyiDWm5E2ITnR7MuPQM5PNiLw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:40 2024 by rpki-client on console-fra.rpki-client.org